InterSystems Caché Stack-Based Buffer Overflow Vulnerability in UtilConfigHome.csp Endpoint

A stack-based buffer overflow vulnerability has been identified in the UtilConfigHome.csp endpoint of InterSystems Caché version 2009.1. This vulnerability arises from inadequate bounds checking of user-supplied data in HTTP GET requests, allowing attackers to overflow a stack buffer, overwrite control structures, and execute arbitrary code. Exploitation of this vulnerability can lead to denial-of-service conditions.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the affected system, in the context of the user running the application. However, failed exploit attempts can cause a denial-of-service condition.

Reproduction

To reproduce this vulnerability, send a crafted HTTP GET request to the UtilConfigHome.csp endpoint, including an oversized argument that exceeds the buffer's capacity. The request must be made to the application's server, targeting port 57772.